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Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1 . (Previously Presented) A method of authenticating candidate members 
wishing to participate in an IP multicast via a communication network, where data sent 
as part of the multicast is to be secured using a key revocation based scheme the 
method comprising: 

a candidate member receiving an invitation from a group controller to join the 
multicast: 

the candidate member sending a registration message to the group controller, 
the registration message including the candidate member's originating IPv6 address, a 
copy of the candidate member's public key from the candidate member's public-private 
key pair and a digital signature using the candidate member's private key from the 
candidate member's public-private key pair; 

at the group controller, verifying that the public key received from the candidate 
member wishing to participate is owned by the candidate member and that the public 
key is associated with the respective candidate member's IPv6 address by inspecting 
an interfacelD part of the IPv6 address; and. 

using the digital signature, further verifying that the candidate member owns the 
public-private key pair to which the public key belongs and that the candidate terminal 
owns the source IP address. 

2. (Previously Presented) The method according to claim 1 , wherein said 
key revocation based scheme is a Logical Key Hierarchy based scheme. 

3. (Previously Presented) The method according to claim 1 , wherein 
each candidate member generates the interfacelD part of the candidate member's IPv6 
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address by taking a cryptographic liasli over the candidate member's own public l<ey 
and one or more other parameters. 

4. (Currently Amended) The method according to claim 3. wherein 
upon receipt of the message, the group controller: 

a) using the received public key to confinn that the signature is valid, thus 
proving that the candidate member does indeed own the public-private key pair to which 
the received public key belongs and 

b) applying the same cryptographic hash, as used by the candidate member, to 
the public key and the other parameter (s) and comparing the result to the interfacelD 
part of the candidate member's IPv6 address, thus verifying that a the source IPv6 
address is owned by the candidate. 

5. (Previously Presented) The method according to claim 2, wherein, 
after the group controller has received the public key from a given candidate member 
and has verified that the public key is associated with the IPv6 address of the sender, 
the group controller sends a unique Key Encryption Key to the member, encrypted with 
that member's public key, and the group controller also sends a Traffic Encryption Key 
and a LKH key set to the member, encrypted with the Key Encryption Key. 

6. (Previously Presented) The method according to claim 1 , wherein said 
IP multicast comprises: 

a one-way multicast where a single node multicasts a stream of data to several 
other nodes; 

a group multicast where group members multicast data to all other members of 
the group; or 

a tele-conference or a videoconference or a multimedia conference. 

7. (Previously presented) A method of authorizing a user to participate in 
a secure IP multicast or broadcast, the method comprising: 
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distributing security l<eys to users using a l<ey revocation based mechanism; 

delivering a certificate to the user, the certificate verifying that a public-private 
key pair identified in the certificate can be validly used by the user to access said secure 
multicast/broadcast, wherein the certificate further includes a digital signature generated 
by applying an algorithm and the user's private l<ey to the contents of the certificate; 

subsequently verifying at a control node that the certificate is owned by the user 
using a proof-of-possession procedure that is based on the private key; and 

assuming that verification is obtained, using said public key to send a Key 
Encryption Key to the user. 

8. (Previously Presented) The method according to claim 7, wherein said 
key revocation based scheme is a Logical Key Hierarchy based scheme. 

9. (Previously Presented) The method according to claim 8, wherein said 
step of verifying at the control node that the certificate is owned by the user, is earned 
out after the control node receives a request from the user to join said secure multicast 
or broadcast. 

1 0. (Previously Presented) The method according to claim 7, wherein said 
proof-of-possession procedure involves the control node sending a random number to 
the user in plain text, and the user sending a response to the control node containing a 
signature generated by applying the private key to the random number, wherein the 
control node is in possession of the user's certificate and can check whether or not the 
message is correctly signed with the user's private key. 

1 1 . (Previously Presented) The method according to claim 7, wherein the 
user to be authorized has a subscription to a first, home communication network and 
wishes to participate in a multicast or broadcast service via a second, visited network in 
which the user is roaming, the method comprising: 
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the visited networl(, in which the user is roaming, contacting the user's home 
network, upon receipt of an initial registration request from said user, to authorize the 
user; 

following authorization by the home network, generating [[a]] the certificate 
relating to said service and generating the public-private key pair, either at the user 
equipment or within one of the networks, and signing the certificate; and 

sending the certificate to the user. 

1 2. (Previously Presented) The method according to claim 1 1 , wherein an 
Authentication and Key Agreement (AKA) procedure is used to authorise the user. 

1 3. (Cun'ently Amended) A group controller for authenticating candidate 
members wishing to participate in an IP multicast via a communication network, where 
data sent as part of the multicast is to be secured using a key revocation based scheme 
requiring that each candidate member submit a public key to the group controller in 
order to become a participating candidate member, the group controller comprising: 

means for sending an invitation to a candidate member to join the multicast; 

means for receiving from the candidate member a registration message, the 
registration message including the candidate member's originating IPv6 address, a copy 
of the candidate member's public key from the candidate member's public-private key 
pair and a digital signature using the candidate member's private key from the 
candidate member's public-private key pair; 

means for verifying that the public key received from the candidate member 
wishing to participate is owned by the candidate member and that the public key is 
associated with the candidate member's IPv6 address by Inspecting an interfacelD part 
of the IP address 

means for using the digital signature for verifying that the candidate member 
owns the public-private key pair to which the public key belongs and that the candidate 
terminal owns the sourc e IP address. 
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14. (Canceled) 

1 5. (Previously Presented) The group controller according to claim 1 3, 
wherein said key revocation based scheme is a Logical Key Hierarchy based scheme. 

1 6. (Previously Presented) The group controller according to claim 1 3, 
further comprising: 

means for receiving and storing a generated interfacelD part of a candidate 
member's ownlPv6 address and for receiving a joining request from the candidate 
member to the group controller which contains: 

the member's IPv6 address including the generated Interface ID; 

the candidate member's own public key; and 

a signature over the entire message generated using the member's private key. 

17. (Previously Presented) The group controller according to claim 16, 
further comprising means for, upon receipt of the message: 

using the received public key to confirm that the signature is valid, thus proving 
that the candidate member does indeed own the public-private key pair to which the 
received public key belongs; and 

applying a cryptographic hash, used by the candidate member, to the public key 
and other parameters and comparing the result to the interfacelD part of the candidate 
member's IPv6 address, thus verifying that the source IPv6 address is owned by the 
candidate member. 

1 8. (Previously Presented) The group controller according to claim 1 7, 
wherein, after the group controller has received the public key from a given candidate 
member and has verified that the public key is associated with the IP address of the 
sender, the group controller having: 
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means for sending a unique Key Encryption Key to tine candidate member, 
encrypted witli that candidate member's public key; and 

means for sending a Traffic Encryption Key and a LKH l^ey set to the candidate 
member, encrypted with the Key Encryption Key. 

1 9. (Previously Presented) The group controller according to claim 1 3, 
wherein said IP multicast comprises: 

means for a single node multicasting a stream of data to several other nodes: 
means for a group multicast where group members multicast data to all other 
members of the group; or 

means for a tele-conference or a videoconference or a multimedia conference. 

20. (Previously Presented) A group controller for authorizing a user to 
participate in a secure IP multicast or broadcast, the group controller comprising: 

means for distributing security keys to the user using a key revocation based 
mechanism; 

means for delivering a certificate to the user, the certificate verifying that a public- 
private key pair identified in the certificate can be validly used by the user to access said 
secure multicast or broadcast, wherein the certificate includes a digital signature 
generated by applying an algorithm and the user's private key to the contents of the 
certificate; 

means for subsequently verifying at a control node that the certificate is owned 
by the user using a proof-of-possession procedure that is based on the private key; and 

means for assuming that verification is obtained, using said public key to send a 
Key Encryption Key to the user. 

21 . (Previously Presented) The group controller according to claim 20, 
wherein said key revocation based scheme is a Logical Key Hierarchy based scheme. 
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22. (Previously Presented) The group controller according to claim 21, 
wherein means for verifying at the control node that the certificate Is owned by the user, 
also verifies the certificate after the control node receives a request from the user to join 
said secure multicast or broadcast. 

23. (Previously Presented) The group controller according to claim 20, 
wherein the control node further comprises: 

means for sending a random number in a message to the user in plain text; and 
means for receiving from the user a response containing a signature generated 
by applying the private portion of the public-private key to the random number, wherein 
the control node is in possession of the user's certificate and can check whether or not 
the message is correctly signed with the user's private key. 

24. (Previously Presented) The group controller according to claim 20, 
wherein the user to be authorized has a subscription to a first, home communication 
network and wishes to participate in a multicast or broadcast sen/ice via a second, 
visited network in which the user is roaming, the group controller including means for: 

the visited network, In which the user is roaming, contacting the user's home 
network, upon receipt of an initial registration request from said user, to authorize the 
user 

receiving from the visited network contacting the user's home network, upon 
receipt of an initial registration request from said user, to authorize the user; 

means for generating the certificate relating to said service following 
authorization by the home network; 

means for generating the public-private key pair and signing the certificate; and 

means for sending the certificate to the user. 

25. (Previously Presented) The group controller according to claim 20, 
wherein an Authentication and Key Agreement (AKA) procedure is used to authorize the 
user. 



Page 8 of 13 



